Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
File: XTTdv33KsQy_aCKXkh61gS2QUHE.mft (raw, json)
Hash identifier: 62C2Wv4Vv1SqEGmiSllD4ouEUN4SY3ux9XZUH/53Pdg=
Subject key identifier: 34:6E:BF:D1:B9:9E:DB:C4:DE:78:6A:84:EF:FF:A2:2B:D9:66:D3:C6
Authority key identifier: 5D:34:DD:BF:7D:CA:B1:0C:BF:68:22:97:92:1E:B5:81:2D:90:50:71
Certificate issuer: /CN=5d34ddbf7dcab10cbf682297921eb5812d905071
Certificate serial: 01965500850BD4B692005D42A44A471558A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
Manifest number: 03FC
Signing time: Sun 20 Apr 2025 21:00:19 +0000
Manifest this update: Sun 20 Apr 2025 21:00:19 +0000
Manifest next update: Mon 21 Apr 2025 21:00:19 +0000
Files and hashes: 1: S6aYdrXE8VeCcP5w8D7hhhcOGoc.roa (hash: csN/l/mC6C7LyFwDFQUEKU3wX0HgZWqjImlEztzBO3Q=)
2: XTTdv33KsQy_aCKXkh61gS2QUHE.crl (hash: 9dHB6xDyef2FmXaE8tEJVncEIDN6jM9HDTWqv/4m5p8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 21:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:00:85:0b:d4:b6:92:00:5d:42:a4:4a:47:15:58:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d34ddbf7dcab10cbf682297921eb5812d905071
Validity
Not Before: Apr 20 21:00:19 2025 GMT
Not After : Apr 21 21:00:19 2025 GMT
Subject: CN=346ebfd1b99edbc4de786a84efffa22bd966d3c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:dd:8e:4c:2f:9c:e4:97:f6:79:51:90:06:80:
eb:da:c7:6e:e5:c4:20:65:d9:8b:87:31:50:99:a4:
ce:31:0a:1d:ec:71:0c:79:5d:cb:1a:c6:2b:d5:fa:
6a:8b:f3:05:b9:91:fe:1c:65:46:50:d3:73:fc:82:
2a:87:c3:97:0b:4c:ee:7b:93:78:1d:67:14:2e:52:
09:77:cb:a4:00:e7:15:52:57:81:51:ad:42:49:4e:
b7:bf:12:b2:32:5b:7f:fd:df:58:df:98:85:8f:67:
46:d1:e9:23:1f:58:39:28:66:68:75:24:51:50:be:
c4:60:a8:b4:cc:b3:98:e1:56:79:48:7f:f0:ca:d3:
c2:27:a9:50:74:e5:6b:aa:ab:72:1e:6e:05:9e:58:
ff:56:cc:90:97:56:1c:0b:e4:a5:d8:fa:11:6f:e6:
5a:92:8d:47:65:d6:a4:52:b4:95:ef:57:d8:7a:27:
90:21:66:1d:e6:02:79:18:d0:ae:c8:a5:c8:fc:29:
63:c0:51:da:36:61:60:ce:84:0e:1d:93:53:5d:42:
d4:7c:a6:6a:ad:a7:8d:d9:7b:7f:e1:71:f8:3a:43:
70:c9:da:71:d5:44:cb:8f:11:1a:4b:3d:d8:f6:b3:
a7:93:5c:84:c7:55:5f:3f:46:4c:08:73:ef:27:8b:
71:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:6E:BF:D1:B9:9E:DB:C4:DE:78:6A:84:EF:FF:A2:2B:D9:66:D3:C6
X509v3 Authority Key Identifier:
keyid:5D:34:DD:BF:7D:CA:B1:0C:BF:68:22:97:92:1E:B5:81:2D:90:50:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:df:89:65:ab:be:79:b0:e9:8a:cd:b7:ec:3b:33:c2:b6:f6:
a3:3a:8e:82:d3:a2:9f:64:ae:d7:2c:eb:54:18:bf:43:95:32:
58:f3:39:78:f3:e1:56:4e:f1:02:e1:db:d6:32:01:e3:eb:50:
a9:9f:71:24:6f:05:6e:eb:90:8c:e3:00:ec:a5:36:5c:96:27:
c3:ba:af:17:ff:a1:7c:f1:98:c5:54:ba:6e:5c:8a:79:7e:ec:
ab:fe:5f:41:89:0c:d1:cc:29:26:bc:7b:bb:77:d0:9f:0a:e0:
92:63:5d:28:16:78:0a:b6:97:be:c9:03:8f:ad:c2:c9:2c:5f:
44:7f:6e:ee:2b:5b:2d:b7:d3:8e:e1:78:68:51:66:a2:c0:a2:
eb:1d:ec:32:18:05:30:83:e1:0b:dc:81:b7:11:cd:02:67:c0:
00:1a:8b:be:a9:9d:14:1e:ca:de:97:bb:61:94:c6:32:f7:2c:
59:10:f7:47:6d:b1:37:eb:0c:0a:98:27:fb:db:eb:d9:15:e7:
ef:81:66:e5:06:fc:6a:68:6e:94:3f:1c:b3:78:77:5c:0d:7f:
62:1f:3f:38:25:b0:09:36:55:b8:e8:49:c1:74:01:eb:2e:33:
5b:d4:2d:c3:1a:d7:35:e3:97:62:af:28:c4:d1:15:47:b4:7a:
68:a1:07:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:29:24 2025 by rpki-client